Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 37 subscribers
  • Views 14640 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Active Directory Setup

acs

Hello All

Installing an XGS126w for a client and in the process of setting up AD Authentication, just to clarify do I require the STAS to be installed on the AD server? 

Also do I need the Client Authentication Agent to be installed too if STAS is installed?

Currently have AD setup in the XGS but wondering what other steps am missing?

Thank you



This thread was automatically locked due to age.
Parents
  • FormerMember
    0 FormerMember

    Hi, Thanks for reaching out to Sophos Community.

    STAS is required only when you require an SSO to authenticate users. Basically, with STAS, Users get authenticated when they login into their Machines which are enrolled into Active Directory.

    If you want to use Client Authentication Agent with AD users, You won't need STAS. Simply integrate AD, Select AD server in "Firewall authentication methods" (Authentication > Services), Install CAA in the end machines and you're good to go!

  • 0 in reply to FormerMember

    Hello Devesh

    Appreciate the quick response, great answer to my question so STAS replaces and removes the need for the CAA tool.  I have integrated the AD server with the firewall but don't see any live users on the firewall.  It pulled through the group but can't see any live users? Have used plaintext authentication to avoid any cert issues for now.  Also will have users logging in via VPN to the firewall so using AD would be good rather than have to maintain a local database.

  • FormerMember
    0 FormerMember in reply to acs

    You won't be able to see users right after integrating AD and importing groups. Users will start showing up once they authenticate either via CAA or login via any other method. :) 

Reply
  • FormerMember
    0 FormerMember in reply to acs

    You won't be able to see users right after integrating AD and importing groups. Users will start showing up once they authenticate either via CAA or login via any other method. :) 

Children
No Data
Unfiltered HTML